I'm in contact with wordpress security team. With the next release I'll close at least 3 CVEs for wordpress-etch. At the moment I'm working in order to close other bugs too. Thank you all for your attention. Andrea -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFIEgHWMXahCK22/rwRAgfhAJ4oORfpgDQ0qWtqziK4ex9X+0d+sQCfYjJH zlPUrreAFf5spJJnlOgrypw= =Eb7G -----END PGP SIGNATURE-----